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REMARKS 



On page 2 of the Office Action, the Examiner has rejected claims 35-42, 44-50 and 52-82 
under 35 U.S.C. 102(e) as being anticipated by Albert et al U.S. Patent Application 
Publication No. 20030056096A1, hereinafter referred to as '^Albert''. In response, the 
Applicant respectfully requests that the Examiner withdraw the rejection for the following 
reasons. 



ALL CLAIMS 35-42, 44-50 and 52-82 

A. Improper Final Rejection Based on New Ground of Reiecrion 

The Examiner indicates on page 6 of the Office Action that "Applicant's amendment 
necessitated the new ground{s) of rejection." 

However, the Applicant notes that claim 35 incorporates former claim 43, which had already 
been examined. Therefore, contrary to the Examiner's assertion, the new ground of rejection 
was not necessitated by the amendment filed on October 2, 2007 in response to the previous 
Office Action. 

Improper Rejection Under 35 U.S.C. 102 

It is noted that the Examiner's rejection of each of the claims relies on a second reference, 
namely, '^NETWORK SECURITY Private Communication in a Public World^\ Second 
Edition, Copyright 2002 by Prentice Hall (pages 227-228), hereinafter referred to as the 
•Network Security" reference. 

In accordance with MPEP 2I31.0L a 35 U.S.C, 102 rejection over multiple references may be 
proper when the extra reference is cited to: 

(A) Prove the primary reference contains an ''enabled disclosure:" 

(B) Explain the meaning of a term used in the primary reference; or 
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(C) Show that a characteristic not disclosed in the reference is inherent. 

Howeven the Examiner has not shown or even alleged that any of the above reasons apply in 



In view of the foregoing, it is respectftilly requested that the Examiner withdraw the rejection 
of claims 35-42. 44-50 and 52-82 under 35 U.S.C. 102(e). 

fADD ITlONAL ARGUMENTS PERTAINING TO CLAIM 45 
Claim 45 reads as follows: 



An access controlJcr for intermediating communications between an interface and a computer and 
operable to store a second key complementary to a first key: said access controller operable lo 
communicate with a client via said interface; said client operable to store said first key and to receive 
instructions from a user: said access controller operable to selectively pass said instructions to said 
computer if a verification protocol utilizing said keys is met; 

wherein said verification protocol includes a generation of a random number by said client, an 
encryption of said random number by said client using said first key. a delivery of said random number 
and said encrypted random number from said client to said access controller, a decryption of said 

cncr>pled random number using said second key by said access controller, a comparison of said random 
number and said decrypted number, and a decision lo pass at least a portion of said instructions if said 
comparison finds a match of said random number with said decrypted number, and a decision not to 
pass said at least a portion of said instructions if no match is found. 



Thus, in the claimed invention, an access controller participates in a verification protocol 
utilizing a first key stored by a client and a second key stored by the access controller. If the 
verification protocol is met, the access controller selectively passes (to a computer) 
instructions received fi*orn a user via the client. As part of the verification protocol, the client 
generates a random number that is encrypted (using the first key) and sent together with the 
(unencrypted) random number to the access controller. The access controller decrypts the 
encrypted random number using the second key and compares it to the received (unencrypted) 
random number. If there is a match, the verification protocol is said to have been met. 
Therefore, the access controller verifies whether the key that was supposed to have been used 
for encryption was actually used. Because there is an element of randomness in each 



the case of citing the "Network Security" reference . 
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verification, a successful verification provides a level of comfort that the commands are being 
issued from a legitimate source. There is no limitation on when the verification could be 
performed, namely it could be done once, periodicially or even for every packet. 

Turning now to Albert, this reference basically teaches a method for authenticating network 
access credentials for users. Paragraphs [0659j-[0063], inter alia, describe a process whereby 
a client supplies a usemame and an encrypted password to a network access server (NAS). 
The NAS sends this information to a network decryption ser\'er {NDS). The NDS consults a 
database to detennine, based on the usemame, which key it needs to use for decryption. It 
then decrypts the passw-ord to obtain a cleartext password. To determine whether this 
password is valid, the NDS sends the usemame and cleartext password to an AAA server, 
which then uses the usemame to determine the "official" password, and compares it to the 
cleartext password. Following this, if there is a match, "access to the internet or some other 
resource" is granted. Using this process, if it happens that the information traveling in 
association with the usemame anywhere between the client and the NDS (via the NAS) is 
sniffed or snooped, it will not reveal the user*s password because it is encrypted. 

However. Albert suffers from a slew of security-related problems. Consider firstly the case 
where the password is deemed invalid in Albert. This does not allow one to conclude whether 
the problem is with the password or with the encryption key, whereas transmitting the data in 
both encrypted and unencrypted form (as done in the claimed invention) would allow the 
dilemma to be resolved. Consider secondly the case where both the correct password and the 
correct encryption key are used. If a malicious third party gains access to the encrypted 
password traveling between Albert's client and Albert's NAS/NDS, this one instance of 
"sniffing'' the encrypted password is sufficient to give "access to the internet or some other 
resource", because the same encrypted passw-ord is transmitted each time. In contrast, the 
claimed invention provides an element of randomness that renders previously sniffed data 
obsolete to a malicious third party. 



It should be expressly xindei^iood that this statement does not serve as an admission that ilie rejection would be 
proper if the additional reference were to be applied for one of reasons (A) through (C). 
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As such, Albert provides no possibility of comparing, on the basis of the received data (which 
is random), whether the password has been encrypted using an expected key. Stated 
differently, Albert does not teach or suggest a verification protocol whereby the client 
generates a random number that is encrypted (using the first key) and sent together with the 
(unencrypted) random number to the access controller, with the access controller subsequently 
decrypting the encrypted random number using the second key and comparing it to the 
received (unencrypted) random number. It is thus apparent that at least one claimed feature is 
neither taught nor suggested by the cited art and, as such, it is respectfully submitted that the 
rejection of claim 45 under 35 U.S.C. 102 cannot stand. The Examiner is therefore 
respectfully requested to withdraw the rejection of claim 45. 

IaOPITIONAL arguments pertaining to claims 46-50 and 52-55 



Claims 46-50 and 52-55 are dependent on claim 45 and therefore incorporate by reference the 
limitations of claim 45. Thus, for the same reasons as those that apply to claim 45. it is 
respectfully submitted that the rejection of claims 46-50 and 52-55 under 35 U.S.C. 102 
cannot stand. The Examiner is therefore respectfully requested to withdraw the rejection of 
claims 46-50 and 52-55. , 

ADDITIONAL ARGUMENTS PERTAINING TO CLAIMS 56-66 AND 70-73 



On page 5, the Examiner states that "claims 45-73 do not teach or define any new limitations 
above claims 35-44, therefore, they are rejected for similar reasons." With all due respect, the 
Examiner is incorrect, at least insofar as claims 56-66 and 70-73 are concerned. Specifically, 
claims 56-66 deal with key updating, claims 70-71 include features found in claims 56-66 and 
claims 72-73 deal with exuiry of a verification protocol. In particular, it should therefore be 
appreciated that each of independent claims 56, 70 and 72 includes one or more features not 
recited bv clams 35-44. 

More specifically, claim 56 reads as follows (emphasis added): 
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In an auiheniication server, a method of securing access between a client having temporary connection 
to a computer via an access controller, said access controller for selectively passing instructions received 
from said client lo said computer if a verificaiion protocol utilizing a set of keys is met. said method 
comprising: 

receiving a request from saiti access controller for an updated first key; 
authenticating said request; 

determining said updated first key and a second key corresponding to said updated first key; and 
delivering said updated first key to said access controller. 



Claim 70 reads as follows (emphasis added): 



An authentication server for securing access between a client having temporary connection to a 
computer via an access controller, said access controller for selectively passing instructions received 
from said client to said computer if a verification protocol utilizing a set of keys is met, said 
authentication server comprising: 

means for receiving a request from said access controller for an updated first key; 
m eans for auth enticating said request; 



means for determining said updated first key and a second key corresponding to said updated first 
key; and, 

means for delivering said updated first key to said access controller. 



Claim 72 reads as follows (emphasis added): 

In an access controller for selectively passing instructions between a client and a computer if a ■ 
verification protocol is met, a method of expiring said verification protocol, comprising: 

determining if a first preset period of time since said client disconnected from said access controller 



determining if a second preset period of time since said verification protocol was updated has elapsed; 



expiring said verification protocol by refusing to pass said instructions if either of said preset periods 
of time have elapsed. 



From a review of the above-emphasized features, it can be readily appreciated that the 
Examiner has not addressed the features of claims 56, 70 and 72 and, as such, it is respectfully 
submitted that a complete examination of the claims has not been performed, which 
contravenes MPEP 707.07(g)-. 



has elapsed; 



and. 
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It should also be pointed out that the additional features of claims 56. 70 and 72 are nowhere 
taught or suggested by the cited art and therefore the rejection of claims 56, 70 and 72 under 
35 U.S.C. 1 02 cannot stand. The. Examiner is therefore respectfully requested to withdraw the 
rejection of claims 56, 70 and 72. 

Claims 57-66, 71 and 73 are each dependent on one of claims 56, 70 or 72, and therefore 
incorporate by reference the limitations of the respective base claim. Thus, for the same 
reasons as those that apply to claims 56, 70 and 72, it is respectfully submitted that the 
rejection of claims 57-66, 71 and 73 under 35 U.S.C. 102 cannot stand. The Examiner is 
therefore respectfully requested to withdraw the rejection of claims 57-=66, 71 and 73. 



ADDITIONAL ARGUMENTS PERTAINING TO CLAIM 67 



Claim 67 reads as follows: 

A method of securing access between a client and a computer having an access comroller intermediate . 
said client and said computer, said method comprising: 

receiving an instruction at said client destined for said computer: 

generating a random number by said client; 

encr>ptiDg said random number by said client using a first key; 

delivering said random number, said encrypted random number and said instruction to said access 
controller: 

decrypting said encrypted random number using a second key by said access concroUer, said second ke>' 
complementary to said tirst key; 

comparing said random number and said decrypted number: 

passing at least a portion of said instruction to said computer if said comparison finds a match of said 
random number with said decrypted nunriber: and, 

discarding said at least a portion if no match is found. 

Thus, the claimed invention provides a method involving a client and an access controller. 
The client generates a random number that is encrypted (using a first key) and sent together 
with the (unencrypted) random niomber and an instruction for a computer. The access 
controller decrypts the encrypted random number using a second key and compares it to the 

-Piecemeal examination should be avoided as much as possible. The examiner ordinarily should reject each 
claim on all valid grounds available. [...]*' 
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received (unencrypted) random number. If there is a match, at least a portion of the 
instruction is passed to the computer. Therefore, the access controller verifies whether the key 
that was supposed to have been used for encryption was actually used. Because there is an 
element of randomness in each verification, a successful verification provides a level of 
comfort that the command was legitimately issued. There is no limitation on when the 
verification could be performed, namely it could be done once, periodicially or even for every 
packet. 

It will be noted that claim 67 recites features similar to those of claim 45. Thus, based upon 
arguments consistent with those presented above in support of claim 45, it is respectfully 
submitted that claim 67 includes at least one feature not taught or suggested by the cited art. 
As such, it is respectfully submitted that the rejection of claim 67 under 35 U.S.C. 102 cannot 
stand, and the Examiner is therefore respectfully requested to withdraw the rejection of claim 
67. 



ADDITIONAL ARGUMENTS PERTAINING TO CLAIMS 68-69 

Claim 68 reads as follows: 

An authentication ser\-er, comprissing: 

an interface for communicaling with a client and an access controller via a communication medium; and 

a processing unit operable to determine a first key for delivery to said client and a second key for 
delivery to said access controller, said first key being delivered to said client only if a user operating said 
client authenticates said users identity with said server: such that when said access controller and said 
client are connected, said access controller selectively passes instructions from said client to a computer 
attached to said access controller if a verification protocol utilizing said keys is met. 

It will be noted that claim 68 recites features similar to those of claim 35. Thus, based upon 
arguments consistent with those presented above in support of claim 35, it is respectfully 
submitted that claim 68 includes at least one feature not taught or suggested by the cited art. 
As such, it is respectfully submitted that the rejection of claim 68 under 35 U.S.C. 102 cannot 
stand, and the Examiner is therefore respectfully requested to withdraw the rejection of claim 
68. 
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Claim 69 is dependent on claim 68 and therefore incorporates by reference the limitations of 
claim 68. Thus, for the same reasons as those that apply to claim 68, it is respectfully 
submitted that the rejection of claim 69 under 35 U.S.C. 102 cannot stand. The Examiner is 
therefore respectfully requested to withdraw the rejection of claim 69. 



ADDITIONAL ARGUMENTS PERTAINING TO CLAIMS 74-82 



Clairifi 74 reads as follows: 

An authenticatioji system, comprising: 

an access controller operable to communicale with a client via a first communication medium: and 

an authentication sen-er operable to communicate wiih said client and i^aid access controller via a second 
communication medium and ixirther operable to deliver a CxtM key to said client and a second key to said 
access controller, said second key being complementary to said first key such that when said client and 
said access controller are connected, communications therebetween can be encrypted using said keys; 
and wherein said access controller is operable to selectively pass instructions received from said client to 
a computer attached to said access controller if a verification protocol utilizing said keys is met: 

wherein said access controller contains a preset second key and said authentication server maintains a 
record of said preset second key; said authentication sen-'er operable to deliver said first key and said 
second key only if said access controller successfully transmits said preset second key to said 
authentication server and said transmitted preset second key matches said authentication server's record 
thereof 

Thus, in the claimed invention, a first key is delivered by an authentication server to a client 
and a second key is delivered by the serv^er to an access controller. The keys are to be utilized 
in a verification protocol which, if met, allows the access controller to selectively pass to a 
computer (attached to the access controller) instructions received from the client. In addition, 
it is noted that deliver\^ of the first kev and the second kev is effect ed only if the access 
controller transmits a preset second kev that matches a record of this preset second key 
maintained bv the authentication server . In this way, the access controller can be 
authenticated based on transmittal of an expected key (the preset second key), and successful 
authentication of the access controller is a pre-condition of the first and second keys being 
delivered by the server. This ensures that communication will not take place with an access 
controller that is not authenticated. 

Turning now to Albert, this reference basically teaches a method for authenticating network 
access credentials for users. Paragraphs [0059]-[0063], inter alia, describe a process whereby 
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a client supplies a usemame and an encrypted password to a network access server (NAS). 
The NAS sends this information to a network decryption server (NDS). The NDS consults a 
database to determine, based on the usemame, which key it needs to use for decryption. It 
then decrypts the password to obtain a cleartext password. To determine whether this 
password is valid, the NDS sends the usemame and cleartext password, to an AAA server, 
which then uses the usemame to determine the "official" password, and compares it to the 
cleartext password. Following this, if there is a match, "access to the internet or some other 
resource" is granted. Using this process, if it happens that the information traveling in 
association with the username anywhere between the client and the NDS (via the NAS) is 
sniffed or snooped, it will not reveal the user's password because it is encrypted. 

It will be obsej-\'ed that authenticity of the NAS/NDS is never questioned in Albert, Stated 
differently, Albert does not teach or suggest that in order for first and second keys (for 
utilization by a client and an access controller in a verification protocol) to be distributed to 
the client and the access controller by an. authentication server, the access controller needs to 
transmit a preset second key that matches a record of the preset second key maintained by that 
serx-er. It is thus apparent that at least one claimed feature is neither taught nor suggested by 
the cited art and, as such, it is pre-emptively submitted that a rejection of claim 74 under 35 
IJ.S.C, 102 in view of Albert would be inappropriate. 

Claims 75-82 are dependent on claim 74 and therefore incorporate by reference the limitations 
of claim 74. Thus, for the same reasons as those that apply to claim 74, it is submitted that a 
rejection of claim 74 under 35 U.S.C. 1 02 in view of Albert cannot stand. 



10 



PAGE 13/14 ' RCVD AT 3/7/2008 2:26:14 PM [Eastern Standard Time) * 8VR:U8PTO-£FXRF*5m * DNI8:2738300 ■ C8ID:5149S41396 * DURATION (mm-ss):03'O4 



03/07/2008 14:24 FAX 5149541396 



SftlART & BIGGAR 



81014/014 



10/673,509 

Response to Office Action of January 10, 2008 



Patent 

Attorney Docket No. : 86503-50 



CONCLUSION 



RECEIVED 
CENTRAL FAX CENTER 

HAR 0 7 2908 



In view of the foregoing. Applicant is of the view that claims 35-42, 44-50 and 52-82 are in 
allowable form. Favourable reconsideration is requested. Early allowance of the Application 
is earnestly solicited. 

If the application is not considered to be in full condition for allowance, for any reason, the 
Applicant respectfully requests the constructive assistance and suggestions of the Examiner in 
drafting one or more acceptable claims pursuant to MPEP 707.070) or in making constructive 
suggestions pursuant to MPEP 706,03 so that the application can be placed in allowable 
condition as soon as possible and without the need for further proceedings. 



Date : March 7, 2008 

SMART & BIGGAR 

1000 de la Gauchetidre St, West 

Suite 3300 

Montreal, Quebec, H3B 4W5 
CANADA 

Telephone: (514)954-1500 



Re^^ecT^Uy submitted, 



'/ 



S^fo Zlobec'^'x 
Agent for Applicants 
Reg. No. 52,535 
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